hs_monolith/runtime/auth.go

// Package with supporting functionality to run the microservice
package runtime

import (
	"fmt"
	"net/http"
	"time"

	"sync"

	"github.com/genofire/hs_master-kss-monolith/lib/log"
)

// URL to the microservice, which manages permissions
var PermissionURL string

// Type of permission
type Permission int

// Some permissions (the real permissions need to come from a permission microservice)
const (
	// permission to add goods to the stock
	// e.g. if a good is received and now available for selling
	PermissionCreateGood = 1

	// permission to delete goods from the stock
	// e.g. if a good becomes fouled and has to be removed manually
	PermissionDeleteGood = 2
)

// Struct that holds the information for a permission cache
type permissionMicroServiceCache struct {
	LastCheck   time.Time
	session     string
	permissions map[Permission]boolMicroServiceCache
	sync.Mutex
}

// Function to check, if a user has a permission
func (c *permissionMicroServiceCache) HasPermission(p Permission) (bool, error) {
	c.LastCheck = time.Now()
	c.Lock()
	defer c.Unlock()
	if cache, ok := c.permissions[p]; ok {
		before := time.Now().Add(-CacheConfig.After.Duration)
		if before.After(cache.LastCheck) {
			return cache.Value, nil
		}
	}

	url := fmt.Sprintf(PermissionURL, c.session, p)
	log.Log.WithField("url", url).Info("has permission?")

	res, err := http.Get(url)

	value := false
	if err == nil {
		value = (res.StatusCode == http.StatusOK)
	}

	c.permissions[p] = boolMicroServiceCache{
		LastCheck: c.LastCheck,
		Value:     value,
	}
	return c.permissions[p].Value, err
}

// Cache for permissions
var permissionCache map[string]*permissionMicroServiceCache
var permissionMutex sync.Mutex

// Function to initialize the permission cache
func init() {
	permissionCache = make(map[string]*permissionMicroServiceCache)
}

// Function to check, if the current session has any permissions
func HasPermission(session string, p int) (bool, error) {
	permissionMutex.Lock()
	defer permissionMutex.Unlock()
	_, ok := permissionCache[session]
	if !ok {
		permissionCache[session] = &permissionMicroServiceCache{
			LastCheck:   time.Now(),
			session:     session,
			permissions: make(map[Permission]boolMicroServiceCache),
		}
	}
	return permissionCache[session].HasPermission(Permission(p))
}
[QS]: comments \runtime 2017-05-03 08:02:29 +02:00			`// Package with supporting functionality to run the microservice`
[TASK] extract runtime package from models + test-coverage one package at the time 2017-04-07 11:56:28 +02:00			`package runtime`
[TASK] add redirect to other auth microservice + add worker to clean cached values from other microservice 2017-04-05 19:03:44 +02:00
			`import (`
			`"fmt"`
			`"net/http"`
			`"time"`

[TASK] change traffic lights to be better seen 2017-05-12 11:50:51 +02:00			`"sync"`
format by linter 2017-06-22 20:36:11 +02:00
			`"github.com/genofire/hs_master-kss-monolith/lib/log"`
[TASK] add redirect to other auth microservice + add worker to clean cached values from other microservice 2017-04-05 19:03:44 +02:00			`)`

[Task]: add comments + comment quality saving 2017-06-21 15:25:18 +02:00			`// URL to the microservice, which manages permissions`
[TASK] move url of other microservices to config 2017-04-07 13:13:37 +02:00			`var PermissionURL string`
[TASK] add redirect to other auth microservice + add worker to clean cached values from other microservice 2017-04-05 19:03:44 +02:00
[QS]: comments \runtime 2017-05-03 08:02:29 +02:00			`// Type of permission`
[TASK] add redirect to other auth microservice + add worker to clean cached values from other microservice 2017-04-05 19:03:44 +02:00			`type Permission int`

[Task]: add comments + comment quality saving 2017-06-21 15:25:18 +02:00			`// Some permissions (the real permissions need to come from a permission microservice)`
[TASK] add redirect to other auth microservice + add worker to clean cached values from other microservice 2017-04-05 19:03:44 +02:00			`const (`
[QS]: comments \runtime 2017-05-03 08:02:29 +02:00			`// permission to add goods to the stock`
[Task]: add comments + comment quality saving 2017-06-21 15:25:18 +02:00			`// e.g. if a good is received and now available for selling`
[TASK] add redirect to other auth microservice + add worker to clean cached values from other microservice 2017-04-05 19:03:44 +02:00			`PermissionCreateGood = 1`
[QS]: comments \runtime 2017-05-03 08:02:29 +02:00
			`// permission to delete goods from the stock`
[Task]: add comments + comment quality saving 2017-06-21 15:25:18 +02:00			`// e.g. if a good becomes fouled and has to be removed manually`
[TASK] add redirect to other auth microservice + add worker to clean cached values from other microservice 2017-04-05 19:03:44 +02:00			`PermissionDeleteGood = 2`
			`)`

[QS]: comments \runtime 2017-05-03 08:02:29 +02:00			`// Struct that holds the information for a permission cache`
[TASK] add redirect to other auth microservice + add worker to clean cached values from other microservice 2017-04-05 19:03:44 +02:00			`type permissionMicroServiceCache struct {`
			`LastCheck time.Time`
			`session string`
			`permissions map[Permission]boolMicroServiceCache`
[TASK] change traffic lights to be better seen 2017-05-12 11:50:51 +02:00			`sync.Mutex`
[TASK] add redirect to other auth microservice + add worker to clean cached values from other microservice 2017-04-05 19:03:44 +02:00			`}`

[QS]: comments \runtime 2017-05-03 08:02:29 +02:00			`// Function to check, if a user has a permission`
[TASK] add redirect to other auth microservice + add worker to clean cached values from other microservice 2017-04-05 19:03:44 +02:00			`func (c *permissionMicroServiceCache) HasPermission(p Permission) (bool, error) {`
			`c.LastCheck = time.Now()`
[TASK] change traffic lights to be better seen 2017-05-12 11:50:51 +02:00			`c.Lock()`
			`defer c.Unlock()`
[TASK] add redirect to other auth microservice + add worker to clean cached values from other microservice 2017-04-05 19:03:44 +02:00			`if cache, ok := c.permissions[p]; ok {`
[TASK] move worker to lib + add permission handler to lib 2017-04-05 20:23:29 +02:00			`before := time.Now().Add(-CacheConfig.After.Duration)`
			`if before.After(cache.LastCheck) {`
[TASK] add redirect to other auth microservice + add worker to clean cached values from other microservice 2017-04-05 19:03:44 +02:00			`return cache.Value, nil`
			`}`
			`}`

			`url := fmt.Sprintf(PermissionURL, c.session, p)`
			`log.Log.WithField("url", url).Info("has permission?")`
[TASK] add test for good add 2017-04-29 18:26:36 +02:00
[TASK] add redirect to other auth microservice + add worker to clean cached values from other microservice 2017-04-05 19:03:44 +02:00			`res, err := http.Get(url)`

[TASK] add test for good add 2017-04-29 18:26:36 +02:00			`value := false`
			`if err == nil {`
			`value = (res.StatusCode == http.StatusOK)`
			`}`

[TASK] add redirect to other auth microservice + add worker to clean cached values from other microservice 2017-04-05 19:03:44 +02:00			`c.permissions[p] = boolMicroServiceCache{`
			`LastCheck: c.LastCheck,`
[TASK] add test for good add 2017-04-29 18:26:36 +02:00			`Value: value,`
[TASK] add redirect to other auth microservice + add worker to clean cached values from other microservice 2017-04-05 19:03:44 +02:00			`}`
			`return c.permissions[p].Value, err`
			`}`

[QS]: comments \runtime 2017-05-03 08:02:29 +02:00			`// Cache for permissions`
[TASK] add redirect to other auth microservice + add worker to clean cached values from other microservice 2017-04-05 19:03:44 +02:00			`var permissionCache map[string]*permissionMicroServiceCache`
[TASK] change traffic lights to be better seen 2017-05-12 11:50:51 +02:00			`var permissionMutex sync.Mutex`
[Task]: Documentation and Test 2017-05-15 10:22:24 +02:00
[QS]: comments \runtime 2017-05-03 08:02:29 +02:00			`// Function to initialize the permission cache`
[TASK] add redirect to other auth microservice + add worker to clean cached values from other microservice 2017-04-05 19:03:44 +02:00			`func init() {`
			`permissionCache = make(map[string]*permissionMicroServiceCache)`
			`}`

[QS]: comments \runtime 2017-05-03 08:02:29 +02:00			`// Function to check, if the current session has any permissions`
[TASK] add create good to api 2017-04-28 12:05:58 +02:00			`func HasPermission(session string, p int) (bool, error) {`
[TASK] change traffic lights to be better seen 2017-05-12 11:50:51 +02:00			`permissionMutex.Lock()`
			`defer permissionMutex.Unlock()`
[TASK] add redirect to other auth microservice + add worker to clean cached values from other microservice 2017-04-05 19:03:44 +02:00			`_, ok := permissionCache[session]`
			`if !ok {`
			`permissionCache[session] = &permissionMicroServiceCache{`
			`LastCheck: time.Now(),`
			`session: session,`
			`permissions: make(map[Permission]boolMicroServiceCache),`
			`}`
			`}`
[TASK] add create good to api 2017-04-28 12:05:58 +02:00			`return permissionCache[session].HasPermission(Permission(p))`
[TASK] add redirect to other auth microservice + add worker to clean cached values from other microservice 2017-04-05 19:03:44 +02:00			`}`